Uploaded image for project: 'DC/OS'
  1. DC/OS
  2. DCOS_OSS-1835

Securing access to spartan HTTP API

    Details

    • Epic Name:
      Securing spartan
    • Epic Status:
      Done
    • Total Story Points:
      9
    • Remaining Story Points:
      0
    • Progress (%):
      100
    • Progress Bar:
      100%

      Description

      Spartan exposes HTTP API for debugging purposes. However, since these are just HTTP endpoints this opens up a security vulnerability on the masters since now you can have un-authorized access to the Masters spartan HTTP end-points. 

       

      In order to secure the endpoints we need to route all HTTP requests through admin router and make sure that the spartan HTTP server does not listen to any other IP other than localhost.

        Attachments

          Activity

            People

            • Assignee:
              sergeyurbanovich Sergey Urbanovich
              Reporter:
              avinash Avinash Sridharan (Inactive)
              Team:
              Networking Team
              Reviewers:
              Deepak Goel
              Watchers:
              Avinash Sridharan (Inactive), Deepak Goel
            • Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: